These threat actors were being then capable to steal AWS session tokens, the short-term keys that allow you to ask for temporary qualifications to the employer??s AWS account. By hijacking active tokens, the attackers were being capable to bypass MFA controls and acquire usage of Risk-free Wall